I do think that cities have a moral obligation to ensure that their local employees are paid enough that they can reasonably live in the city.
So many of the issues with police would be better if cities were generally policed by police who lived there. I grew up knowing where most of my school teachers lived because i walked by their houses. A teacher in Palo Alto should be able to afford a condo there.
I think there are other exploits. Some of my cheap audio devices hit chinese IPs looking for firmware upgrades. If you could hack those IPs then you could deliver a malicious firmware while the network didn't see anything but a web request.
Virtually all of mine is zwave. It connects through a bridge to the internet and so while you could compromise the bridge you'd never really compromise the device. The light switch lacks wifi, lacks any concept of an IP address and I struggle to see any viable exploit against that.
The idea of buying a mismatch of nonstandard wifi bulbs from different suppliers just sounds like a nightmare.
Plus at that point wouldn't a good heuristic firewall be nearly as helpful. Something that could say "yo, this sprinkler controller is trying to send out lots more data than it normally does" would probably work almost as well but not need the ongoing configuration.
At which point the consumer would see "Hey, your lightswitch wants permission to send a whole bunch of traffic to a random server" and they'd approve the change like they always do.
But how would that work for devices that aren't tied to a specific service? I have some neat little wifi devices that show up in spotify and let me stream to various speakers around the house. If i cut them off from the internet then they simply don't work. I'd have to manually identify every IP that spotify uses and there seem to be a lot of them. In the end I watched them, identified two chinese IPs that they do reach out to and simply blocked those two. In theory that should stop them pulling in new firmware which seems like the most likely way they'd be infected. (However I haven't been able to determine if it uses an DNS lookup to find them and if so then that means someone hacking the chinese manufacturer could easily route the dns to another server).
The other thing that's really missing here is that this isn't really limited to iot devices. I'm sure in a year or two they'll be as secure as a typical windows machine and then the exploits will swing back that direction. Consumers that care about keeping their devices safe will do so, and those that don't give a fuck will see a slight improvement as time goes by.
I've corralled mine into a dhcp space, but it might be safer just to set up a whole separate wifi network for them, would make it easier to monitor.
Still it's trickier for things like the chromecast or airplay-type devices, because they both interact with phones and laptops on the local network and need to connect directly to streaming sources on the internet.
I would suggest making sure it's a VPN with a certificate you can verify through an independent channel. It'd be easy for GHCQ to intercept a PPTP vpn channel and implement a MITM attack. OpenVPN would be a lot more effort.
Which makes me immediately skeptical of the motives of anyone making those claims.
Since they are saying that in order to carry crew, the falcon will most likely need to be flown in expendable mode, which will make it less financially competitive, which will benefit someone else...
Does any isp that offers 1 gigabit connections need significantly more backhaul bandwidth than one selling 50 megabit connections? Intuitively you'd expect it to be 20x more but in reality I don't suppose it is.
There are some compulsive torrenters who'll download more than ever, but they are surely in the minority. Some behavioral changes come wtih having fast reliable internet, but not all of them serve to increase bandwidth consumption.
But why would you have to do that in realtime? If you've got synchronized clocks at each receiver, why not sample for 100ms and then spend a few seconds to compress and transmit the sample? You could then triangulate the position once every few seconds - which seems like it'd be good enough for just about anything i can think of.
That's what spotify do. I'm not sure i've heard of a lot of people seeking out US spotify accounts so they can access american music overseas - but maybe it does happen.
Plus they already know which accounts have used VPNs in the past and are likely to do so in the future. "Oh, 4 accounts that have used VPNs have just shown up on this previously-unseen IP range".
I haven't really understood why they don't just say that your subscription fee only covers the region in which you subscribe. Then they'd at least get double the subscription fee from someone who uses it in their own country + another country.
But ebay would (or at least should) catch you if you did that a bunch of times. If they allowed someone to commit that transaction thousands of times then it'd seriously undermine the entire platform.
It seems like it'd be a good way to reduce some of the delivery hurdles. If you live in a city where delivery companies aren't comfortable leaving packages on your door step then it'd give you another location where you could pick up your Amazon stuff - presumably less inconvenient than driving out to the UPS depot.
It also would give them a chance to offer cheaper next day delivery since they could just nextday a giant box of small things to the convenience store and split them out for all their customers. Given that Amazon must account of a third of the boxes on just about any residential delivery truck it seems like they've got a lot of margin to try different models.
I have an ICE car and even still I'd always rent something if i'm going on a road trip. The depreciation of putting 1500 miles on my own car in a week is comparable to what it costs to rent something.
Just as I don't drive a huge truck for the rare situations when I need to move something heavy. I just run over to uhaul or home depot and rent a pick up for $20-30.
Obviously if you need to drive hundreds of miles on a regular basis or if you need to move loads of concrete or lumbar every week then you'd be better off owning a vehicle that can do those things, but there are a lot of easy options for overcoming that.
You can self insure if you own a lot of vehicles or your can usually post some kind of bond to prove that you have the means to pay for any accident you cause.
I'm at a loss for when it could ever work. Maybe for businesses that have a dedicated subnet that's properly geolocated, but I don't think i've ever had a residential address that maxmind has done better than a mile or two accuracy.
Really, their complaint should be with the local jurisdictions that show up and make their life hell.
But they are able to determine location. They identified the country and nothing more. Their API returns an accuracy radius which is the number of kilometers for which they are 67% certain that the user resides. So they picked a point in KS and presumably returned a very large radius.
They claim they get within 40km 83% of the time. How anyone could thing this is ever suitable for showing up at someone's house is unbelievable.
Slashdot Mirror
My last HTC phone was the HTC Dream running Android Donut and *it* lacked a headphone port. Instead coming with a weird proprietary USB headphone.
I do think that cities have a moral obligation to ensure that their local employees are paid enough that they can reasonably live in the city.
So many of the issues with police would be better if cities were generally policed by police who lived there. I grew up knowing where most of my school teachers lived because i walked by their houses. A teacher in Palo Alto should be able to afford a condo there.
I think there are other exploits. Some of my cheap audio devices hit chinese IPs looking for firmware upgrades. If you could hack those IPs then you could deliver a malicious firmware while the network didn't see anything but a web request.
Virtually all of mine is zwave. It connects through a bridge to the internet and so while you could compromise the bridge you'd never really compromise the device. The light switch lacks wifi, lacks any concept of an IP address and I struggle to see any viable exploit against that.
The idea of buying a mismatch of nonstandard wifi bulbs from different suppliers just sounds like a nightmare.
Plus at that point wouldn't a good heuristic firewall be nearly as helpful. Something that could say "yo, this sprinkler controller is trying to send out lots more data than it normally does" would probably work almost as well but not need the ongoing configuration.
At which point the consumer would see "Hey, your lightswitch wants permission to send a whole bunch of traffic to a random server" and they'd approve the change like they always do.
But how would that work for devices that aren't tied to a specific service? I have some neat little wifi devices that show up in spotify and let me stream to various speakers around the house. If i cut them off from the internet then they simply don't work. I'd have to manually identify every IP that spotify uses and there seem to be a lot of them. In the end I watched them, identified two chinese IPs that they do reach out to and simply blocked those two. In theory that should stop them pulling in new firmware which seems like the most likely way they'd be infected. (However I haven't been able to determine if it uses an DNS lookup to find them and if so then that means someone hacking the chinese manufacturer could easily route the dns to another server).
The other thing that's really missing here is that this isn't really limited to iot devices. I'm sure in a year or two they'll be as secure as a typical windows machine and then the exploits will swing back that direction. Consumers that care about keeping their devices safe will do so, and those that don't give a fuck will see a slight improvement as time goes by.
I've corralled mine into a dhcp space, but it might be safer just to set up a whole separate wifi network for them, would make it easier to monitor.
Still it's trickier for things like the chromecast or airplay-type devices, because they both interact with phones and laptops on the local network and need to connect directly to streaming sources on the internet.
I would suggest making sure it's a VPN with a certificate you can verify through an independent channel. It'd be easy for GHCQ to intercept a PPTP vpn channel and implement a MITM attack. OpenVPN would be a lot more effort.
Which makes me immediately skeptical of the motives of anyone making those claims.
Since they are saying that in order to carry crew, the falcon will most likely need to be flown in expendable mode, which will make it less financially competitive, which will benefit someone else...
Plus if you load the crew before the fuel then the only people near the partially fueled rocket are the crew themselves.
If you load them after fueling then you're going to need a bunch of support stuff to also be near the "live" rocket.
So it can avoid loading video ads on mobile when you have low battery :D
I would imagine they are using XP-GPON2 since they can overlay that on the same fiber network that they are using for the 1G service.
Unless anyone else in his local neighborhood is on the 10G frequency then he likely has it to himself for the time being.
I was wondering the same sort of thing.
Does any isp that offers 1 gigabit connections need significantly more backhaul bandwidth than one selling 50 megabit connections? Intuitively you'd expect it to be 20x more but in reality I don't suppose it is.
There are some compulsive torrenters who'll download more than ever, but they are surely in the minority. Some behavioral changes come wtih having fast reliable internet, but not all of them serve to increase bandwidth consumption.
But why would you have to do that in realtime? If you've got synchronized clocks at each receiver, why not sample for 100ms and then spend a few seconds to compress and transmit the sample? You could then triangulate the position once every few seconds - which seems like it'd be good enough for just about anything i can think of.
That's what spotify do. I'm not sure i've heard of a lot of people seeking out US spotify accounts so they can access american music overseas - but maybe it does happen.
Plus they already know which accounts have used VPNs in the past and are likely to do so in the future. "Oh, 4 accounts that have used VPNs have just shown up on this previously-unseen IP range".
I haven't really understood why they don't just say that your subscription fee only covers the region in which you subscribe. Then they'd at least get double the subscription fee from someone who uses it in their own country + another country.
But ebay would (or at least should) catch you if you did that a bunch of times. If they allowed someone to commit that transaction thousands of times then it'd seriously undermine the entire platform.
It seems like it'd be a good way to reduce some of the delivery hurdles. If you live in a city where delivery companies aren't comfortable leaving packages on your door step then it'd give you another location where you could pick up your Amazon stuff - presumably less inconvenient than driving out to the UPS depot.
It also would give them a chance to offer cheaper next day delivery since they could just nextday a giant box of small things to the convenience store and split them out for all their customers. Given that Amazon must account of a third of the boxes on just about any residential delivery truck it seems like they've got a lot of margin to try different models.
I think that's absolutely it.
The fact that 6% can be swayed is huge, that's the kind of margin that politicians spend millions to achieve.
I have an ICE car and even still I'd always rent something if i'm going on a road trip. The depreciation of putting 1500 miles on my own car in a week is comparable to what it costs to rent something.
Just as I don't drive a huge truck for the rare situations when I need to move something heavy. I just run over to uhaul or home depot and rent a pick up for $20-30.
Obviously if you need to drive hundreds of miles on a regular basis or if you need to move loads of concrete or lumbar every week then you'd be better off owning a vehicle that can do those things, but there are a lot of easy options for overcoming that.
Many states don't require insurance.
You can self insure if you own a lot of vehicles or your can usually post some kind of bond to prove that you have the means to pay for any accident you cause.
I'm at a loss for when it could ever work. Maybe for businesses that have a dedicated subnet that's properly geolocated, but I don't think i've ever had a residential address that maxmind has done better than a mile or two accuracy.
Really, their complaint should be with the local jurisdictions that show up and make their life hell.
For a lot of geolocation stuff, that's good enough. It's good enough for Netflix certainly.
But they are able to determine location. They identified the country and nothing more. Their API returns an accuracy radius which is the number of kilometers for which they are 67% certain that the user resides. So they picked a point in KS and presumably returned a very large radius.
They claim they get within 40km 83% of the time. How anyone could thing this is ever suitable for showing up at someone's house is unbelievable.